Help & Resource Center

Authorize.Net Technical Updates - August 25, 2015

Question

I just received the following e-mail from Authorize.Net about a bunch of changes that are being performed.  Do I need to be concerned about any of these updates?

Answer

The short answer to your question is no, these changes do not affect you.

Here are the specific changes that are addressed in the above letter from Authorize.Net:

  1. Security Certificate Upgrades to api.authorize.net
    After September 21, 2015 any website that connects to api.authorize.net will need to use a SHA-2 signed certificate or it will fail.  This change will have no effect on your website.

  2. Transaction ID Changes
    Authorize.Net is changing how they create Transaction IDs.  Specifically, they will no longer be created in numerical order.  This will have no effect on your website.

  3. TLS Remediation for PCI DSS Compliance
    Authorize.Net is going to be disabling something called TLS 1.0.  Transport Layer Security (TLS) is the successor to Secure Sockets Layer (SSL) and is used to secure the transaction between your website and Authorize.Net. This change will not affect your website.

  4. Akamai Reminder
    As previously reported, the change for the Akamai upgrade is already done.

Please submit a Support Request if you have any questions about these Authorize.net changes. Thank you.